3 matches found
CVE-2019-7748
includes\online.php in DbNinja 3.2.7 allows XSS via the data.php task parameter if users/admin/tasks.php exists...
CVE-2019-7748
includes\online.php in DbNinja 3.2.7 allows XSS via the data.php task parameter if users/admin/tasks.php exists...
CVE-2019-7748
CVE-2019-7748 affects DbNinja 3.2.7 where the file _includes\online.php can be abused to trigger cross-site scripting through the data.php task parameter when _users/admin/tasks.php exists. This is a reflected/XSS-style issue tied to the handling of the data parameter, as described in the NVD ent...